Commit Message: Commit Date: Dec 19, 2014 File Changed: Key Changes: SQL Injection Protection: - parameter is now sanitized using to prevent SQL injection. - The clause now properly casts the to an integer using for both the and tables. Previous Vulnerabilities: - The previous code directly inserted the and values without any sanitization or type casting, making it susceptible to SQL injection attacks. Repository Status: Archived: This repository was archived by the owner on Mar 24, 2024, and is now read-only. Security Measures: The commit fixed SQL injection vulnerabilities by adding proper sanitization and type casting to input variables.